While I started my project to setup an own (Home) Kubernetes cluster with a mixed-architecture (AMD64+ARM64), I realized that there are a lot of public helm charts around that do not satisfy my 2 basic needs of: 1. Deploying architecture independent images 2. Fullfil basic security settings (non-root, unprivileged,
After part 3 of this blog series we have a fully working Kubernetes cluster. Load-BalancerIt has one major drawback: All exposed ports of running pods/services are only reachable under the specific worker node IP address. In a real cluster a load-balancer would handle all incoming traffic and route it
The following steps have to be done on all Raspberry Pi's in the cluster! Prepare Docker installationEnable the linux kernel control groups (cgroups) for Docker and Kubernetes. These cgroups are responsible for isolation and limiting of resources like CPU and memory. Therefor it's necessary to edit the boot firmware file.